Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-39805

Remove unsafe cyphers of SSHD module

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • Major
    • core
    • Jenkins 2.7.3
      sshd-module: 1.7

    Description

      SSHD is setup with unsecured cyphers like CBC (see https://www.kb.cert.org/vuls/id/958563). These cyphers should be removed.

      There is already a PR filed here: https://github.com/jenkinsci/sshd-module/pull/5. This will also need to be integrated in core hence this ticket.

      Attachments

        Issue Links

          is related to

          Improvement - An improvement or enhancement to an existing feature or task. JENKINS-33021 trilead ssh MAC and key exchange algorithms severely outdated

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved
          links to

          Web Link sshd-module - PR#5

          Activity

            People

              oleg_nenashev Oleg Nenashev
              allan_burdajewicz Allan BURDAJEWICZ
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: